Lead threat modeling, hardening and operation of security services within DoorDash’s Product and Cloud Security domains
Job Summary
Lead threat modeling, hardening and operation of security services within DoorDash’s Product and Cloud Security domains.
Define, document and implement security standards, guidelines and procedures to design and implement automated security controls and remediation tools with rigor and developer ergonomics.
Partner cross-functionally with Core Infrastructure, Product Engineering, Legal, Security teams and Vendor Partners to build “paved paths” that provide actionable feedback to embed secure design practices into the product and infrastructure development process.
Matching Summary
Lead threat modeling, hardening and operation of security services within DoorDash’s Product and Cloud Security domains.
Skills & Requirements
Must-have
Product and Cloud Security services
Automated security controls and remediation
CI/CD pipelines security automation
Cloud infrastructure GCP and AWS
Infrastructure as code Terraform
Nice-to-have
Developer ergonomics
Cross-functional partnership
LLMs and AI tools adoption
Mentoring earlier career engineers
Key Requirements
8+ years security engineer experience
Product security or infrastructure security
Foundational infrastructure security improvements
OWASP top 10 vulnerability knowledge
Proficient in code, architecture security analysis
Scripting languages Python, Java
Golang experience is a plus
Exceptional analytical and investigative abilities